GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 24,603
Composer 5,006
Erlang 39
GitHub Actions 38
Go 2,636
Maven 6,104
npm 4,262
NuGet 760
pip 4,057
Pub 12
RubyGems 956
Rust 1,054
Swift 45

Unreviewed advisories

All unreviewed 276,513

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

6,768 advisories

Filter by severity

Uh oh!

There was an error while loading. Please reload this page.

Sort by

Newest

Oldest

Recently updated

Least recently updated

Open redirect vulnerability in WebID/IISWebAgentIF.dll in RSA Authentication Agent 5.3.0.258 for... Moderate Unreviewed

CVE-2008-2027 was published May 1, 2022

The AssignUser function in template.class.php in PHPizabi 0.848b C1 HFP3 performs unsafe macro... Moderate Unreviewed

CVE-2008-2018 was published May 1, 2022

The drive_init function in QEMU 0.9.1 determines the format of a raw disk image based on the... Moderate Unreviewed

CVE-2008-2004 was published May 1, 2022

phpdemo/viewsource.php in Advanced Software Engineering ChartDirector 4.1 allows remote attackers... Moderate Unreviewed

CVE-2008-1782 was published May 1, 2022

WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote attackers to... Moderate Unreviewed

CVE-2008-1717 was published May 1, 2022

PHP-Nuke Platinum 7.6.b.5 allows remote attackers to obtain configuration information via a... Moderate Unreviewed

CVE-2008-1680 was published May 1, 2022

The PPTP VPN service in Watchguard Firebox before 10, when performing the MS-CHAPv2... Moderate Unreviewed

CVE-2008-1618 was published May 1, 2022

The kernel in IBM AIX 6.1 allows local users with ProbeVue privileges to read arbitrary kernel... Moderate Unreviewed

CVE-2008-1598 was published May 1, 2022

CFNetwork in Safari in Apple Mac OS X before 10.5.3 automatically sends an SSL client certificate... Moderate Unreviewed

CVE-2008-1580 was published May 1, 2022

Wiki Server in Apple Mac OS X 10.5 before 10.5.3 allows remote attackers to obtain sensitive... Moderate Unreviewed

CVE-2008-1579 was published May 1, 2022

BolinOS 4.6.1 allows remote attackers to obtain sensitive information via a direct request to... Moderate Unreviewed

CVE-2008-1557 was published May 1, 2022

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2)... Moderate Unreviewed

CVE-2008-1523 was published May 1, 2022

PEEL, possibly 3.x and earlier, allows remote attackers to obtain configuration information via a... Moderate Unreviewed

CVE-2008-1506 was published May 1, 2022

Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain... Moderate Unreviewed

CVE-2008-1318 was published May 1, 2022

IBM Rational ClearQuest 7.0.1.1 and 7.0.0.2 might allow local or remote attackers to obtain... Moderate Unreviewed

CVE-2008-1288 was published May 1, 2022

ViewVC before 1.0.5 stores sensitive information under the web root with insufficient access... Moderate Unreviewed

CVE-2008-1291 was published May 1, 2022

ViewVC before 1.0.5 includes "all-forbidden" files within search results that list CVS or... Moderate Unreviewed

CVE-2008-1290 was published May 1, 2022

ViewVC before 1.0.5 provides revision metadata without properly checking whether access was... Moderate Unreviewed

CVE-2008-1292 was published May 1, 2022

mod_userdir in lighttpd 1.4.18 and earlier, when userdir.path is not set, uses a default of $HOME... Moderate Unreviewed

CVE-2008-1270 was published May 1, 2022

Juniper Networks Secure Access 2000 5.5 R1 (build 11711) allows remote attackers to obtain... Moderate Unreviewed

CVE-2008-1181 was published May 1, 2022

Flyspray 0.9.9.4 generates different error messages depending on whether the username is valid or... Moderate Unreviewed

CVE-2008-1166 was published May 1, 2022

OMEGA (aka Omegasoft) INterneSErvicesLosungen (INSEL) 7 generates different responses depending... Moderate Unreviewed

CVE-2008-1135 was published May 1, 2022

mod_cgi in lighttpd 1.4.18 sends the source code of CGI scripts instead of a 500 error when a... Moderate Unreviewed

CVE-2008-1111 was published May 1, 2022

Apple QuickTime before 7.4.5 does not properly handle external URLs in movies, which allows... Moderate Unreviewed

CVE-2008-1014 was published May 1, 2022

notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have... Moderate Unreviewed

CVE-2008-0990 was published May 1, 2022

Previous 1…253…271 Next

Previous 1 2 … 251 252 253 254 255 … 270 271 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

6,768 advisories